EC0-479
EC-Council Certified Security Analyst (ECSA)
↘
http://www.testsexpert.com/EC0-479.html
Question: 1
When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type
of IDS is being used?
A. Passive IDS
B. Active IDS
C. Progressive IDS
D. NIPS
Answer: B
Question: 2
Simon is a former employee of Trinitron XML Inc. He feels he was wrongly terminated and wants to hack
into his forme company's network. Since Simon remembers some of the server names, he attempts to run
the axfr and ixfr command: using DIG. What is Simon trying to accomplish here?
A. Send DOS commands to crash the DNS servers
B. Perform DNS poisoning
C. Perform a zone transfer
D. Enumerateal the users in the domain
Answer: C
Question: 3
What will the following command produce on a website login page?
SELECT email, passwd, login_id, full_name FROM members
WHERE email = 'someone@somehwere.com'; DROP TABLE members; --'
A. Deletes the entire members table
B. Inserts the Error! Reference source not found, email address into the members table
C. Retrieves the password for the first user in the members table
D. This command will not produce anything since the syntax is incorrect
Answer: A
Question: 4
You setup SNMP in multiple offices of your company. Your SNMP software manager is not
receiving data from other offices like it is for your main office. You suspect that firewall changes are to
blame. What ports should you open for SNMP to work through Firewalls (Select 2)
A. 162
A. 161
B. 163
C. 160
Answer: A,B
www.testsexpert.com
2
Question: 5
You are carrying out the last round of testing for your new website before it goes live. The website has
many dynamic pages and connects to a SQL backend that accesses your product inventory in a database.
You come across a web security site that recommends inputting the following code into a search field on
web pages to check for vulnerabilities:
<script>alert("This is a test.")</script> When you type this and click on search, you receive a pop-up
window that says:
"This is a test."
What is the result of this test?
A. Your website is vulnerable to CSS
B. Your website is not vulnerable
C. Your website is vulnerable to SQL injection
D. Your website is vulnerable to web bugs
Answer: A
Question: 6
If an attacker's computer sends an IPID of 31400 to a zombie computer on an open port in IDLE scanning,
what will be the response?
A. The zombie will not send a response
B. 31402
C. 31399
D. 31401
Answer: D
Question: 7
Michael works for Kimball Construction Company as senior security analyst, As part of yearly security
audit, Michael scans his network for vulnerabilities. Using Nmap, Michael conducts XMAS scan and most
of the ports scanned do not give a response. In what state are these ports?
A. Closed
B. Open
C. Stealth
D. Filtered
Answer: B
www.testsexpert.com
3
Question: 8
You are assisting a Department of Defense contract company to become compliant with the stringent
security policies set by the DoD. One such strict rule is that firewalls must only allow incoming
connections that were first initiated by internal computers. What type of firewall must you implement to
abide by this policy?
A. Packet filtering firewall
B. Circuit-level proxy firewall
C. Application-level proxy firewall
D. Statefull firewall
Answer: D
Question: 9
Jessica works as systems administrator for a large electronics firm. She wants to scan her network quickly
to detect live hosts by using ICMP ECHO Requests. What type of scan is Jessica going to perform?
A. Tracert
B. Smurf scan
C. Ping trace
D. ICMP ping sweep
Answer: D
Question: 10
You work as an IT security auditor hired by a law firm in Boston to test whether you can gain access to
sensitive information about the company clients. You have rummaged through their trash and found very
little information. You do not want to set off any alarms on their network, so you plan on performing
passive footprinting against their Web servers. What tool should you use?
A. Ping sweep
B. Nmap
C. Netcraft
D. Dig
Answer: C
www.testsexpert.com
4
You will not find better practice material than testsexpert PDf questions with
answers on the web because it provides real exams preparation environment.
Our practice tests and PDF question, answers are developed by industry leading
experts according to the real exam scenario. At the moment we provides only
question with detailed answers at affordable cost. You will not find comparative
material elsewhere on the web at this price. We offer Cisco, Microsoft, HP,
IBM, Adobe, Comptia, Oracle exams training material and many more.
We also provide PDF Training Material for:
Cisco Microsoft HP IBM Adobe Comptia Oracle
CCNA MCTS AIS Lotus CS4 A+ 11g DBA
CCNP MCSE APC WebSphere CS3 Security+ 10g DBA
CCIP MCITP APS Mastery ACE Server+ OSA 10g
CCIE MBS ASE SOA CS5 Network+ OCA 9i
CCVP MCPD CSA Storage CS2 Linux+ 11i
CCSP MCAD MASE Rational Captivate iNet+ 9i Forms
CXFF MCAS APP Tivoli Flex Project+ Weblogic
CCENT MCSA CSD IBM DB2 CSM RFID+ Oracle 8i
CCDE MCDBA CSE IBM XML MX7 HTI+ PTADCE
We provide latest exams preparation material only.
Contact US at: support@testsexpert.com
Join Us at
Twitter: www.twitter.com/testsexpert
FaceBook: www.facebook.com/testsexpert
www.testsexpert.com
5